Lucene search
K

151 matches found

OpenVAS
OpenVAS
added 2025/03/17 12:0 a.m.13 views

Huawei EulerOS: Security Advisory for gstreamer1-plugins-base (EulerOS-SA-2025-1264)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.8AI score0.01324EPSS
Exploits2References2
Mageia
Mageia
added 2025/03/08 3:29 a.m.66 views

Updated chromium-browser-stable packages fix security vulnerabilities

High CVE-2025-1914: Out of bounds read in V8. Medium CVE-2025-1915: Improper Limitation of a Pathname to a Restricted Directory in DevTools. Medium CVE-2025-1916: Use after free in Profiles. Medium CVE-2025-1917: Inappropriate Implementation in Browser UI. Medium CVE-2025-1918: Out of bounds read...

8.8CVSS7.6AI score0.00657EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/03/04 12:0 a.m.6 views

PT-2025-9687 · Unknown +2 · Tuleap Enterprise Edition +2

Name of the Vulnerable Software and Affected Versions: Tuleap versions prior to 16.4.99.1740492866 Tuleap Enterprise Edition versions prior to 16.4-6 and 16.3-11 Description: The issue concerns the management of sensitive information, specifically the password for connecting to the Redis instance...

6.5CVSS6.5AI score0.00348EPSS
Exploits0References8
The Hacker News
The Hacker News
added 2025/02/25 4:10 a.m.37 views

Two Actively Exploited Security Flaws in Adobe and Oracle Products Flagged by CISA

The U.S. Cybersecurity and Infrastructure Security Agency CISA has added two security flaws impacting Adobe ColdFusion and Oracle Agile Product Lifecycle Management PLM to its Known Exploited Vulnerabilities KEV catalog, based on evidence of active exploitation. The vulnerabilities in question ar...

10CVSS8.2AI score0.99571EPSS
Exploits35
Amazon
Amazon
added 2025/02/25 12:0 a.m.22 views

Important: emacs

Issue Overview: In elisp-mode.el in GNU Emacs through 30.0.92, a user who chooses to invoke elisp-completion-at-point for code completion on untrusted Emacs Lisp source code can trigger unsafe Lisp macro expansion that allows attackers to execute arbitrary code. This unsafe expansion also occurs ...

7.8CVSS8AI score0.00526EPSS
Exploits0
NVD
NVD
added 2025/02/05 11:15 a.m.19 views

CVE-2024-5528

An issue was discovered in GitLab CE/EE affecting all versions prior to 16.11.6, starting from 17.0 prior to 17.0.4, and starting from 17.1 prior to 17.1.2, which allows a subdomain takeover in GitLab Pages...

5.4CVSS0.00392EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2025/01/30 12:0 a.m.15 views

openSUSE Security Advisory (SUSE-SU-2025:0277-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.7AI score0.0124EPSS
Exploits0References5
IBM Security Bulletins
IBM Security Bulletins
added 2025/01/28 10:8 p.m.11 views

Security Bulletin: IBM Maximo Application Suite - Monitor Component is vulnerable to ipp-3.15.0-py3-none-any.whl CVE-2024-5569

Summary IBM Maximo Application Suite - Monitor Component is vulnerable to ipp-3.15.0-py3-none-any.whl CVE-2024-5569. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2024-5569 DESCRIPTION: zipp is vulnerable to a denial of service, caused ...

6.2CVSS6.2AI score0.00236EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologies
added 2025/01/27 12:0 a.m.3 views

PT-2025-5287 · Apple · Macos Sonoma +2

Name of the Vulnerable Software and Affected Versions: macOS Sequoia versions prior to 15.3 macOS Sonoma versions prior to 14.7.3 Description: The issue is related to parsing a file, which may lead to an unexpected app termination. It is also associated with unlimited resource allocation,...

5.5CVSS6.8AI score0.00256EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2025/01/27 12:0 a.m.4 views

PT-2025-5324 · Apple · Ipados +5

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 14.7.3 iOS versions prior to 18.3 iPadOS versions prior to 17.7.4 and prior to 18.3 watchOS versions prior to 11.3 tvOS versions prior to 18.3 visionOS versions prior to 2.3 Description: The issue is related to incorre...

7.8CVSS8.9AI score0.00326EPSS
Exploits0References17
OpenVAS
OpenVAS
added 2025/01/15 12:0 a.m.7 views

Ubuntu: Security Advisory (USN-7205-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7AI score0.01854EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/12/20 12:0 a.m.11 views

SUSE: Security Advisory (SUSE-SU-2024:4051-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.6AI score0.01263EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2024/12/13 12:0 a.m.6 views

PT-2024-16875 · WordPress · Wp Timetics

Name of the Vulnerable Software and Affected Versions: WP Timetics - AI-powered Appointment Booking Calendar and Online Scheduling Plugin versions up to, and including, 1.0.27 Description: The issue concerns a missing capability check on the "/wp-json/timetics/v1/customers/" REST API endpoint. Th...

4.3CVSS6.7AI score0.00321EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2024/12/11 12:0 a.m.5 views

PT-2024-9582 · Gitlab · Gitlab Ce/Ee

Name of the Vulnerable Software and Affected Versions: GitLab CE/EE versions 9.4 through 17.4.6 GitLab CE/EE versions 17.5 through 17.5.4 GitLab CE/EE versions 17.6 through 17.6.2 Description: The issue affects GitLab CE/EE and is related to an uncontrolled resource consumption. An attacker could...

7.8CVSS6.9AI score0.0075EPSS
Exploits1References16
Positive Technologies
Positive Technologies
added 2024/11/22 12:0 a.m.5 views

PT-2024-27261 · Qnap · Quts Hero +1

Name of the Vulnerable Software and Affected Versions: QNAP operating system versions prior to QTS 5.2.1.2930 build 20241025 QNAP operating system versions prior to QuTS hero h5.2.1.2929 build 20241025 Description: A path traversal issue has been reported, potentially allowing remote attackers wi...

2.1CVSS7.2AI score0.00676EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/11/18 12:0 a.m.5 views

PT-2024-8740 · Siemens · Tecnomatix Plant Simulation +1

Name of the Vulnerable Software and Affected Versions: Teamcenter Visualization versions prior to V14.2.0.14 Teamcenter Visualization versions prior to V14.3.0.12 Teamcenter Visualization versions prior to V2312.0008 Teamcenter Visualization versions prior to V2406.0005 Tecnomatix Plant Simulatio...

7.8CVSS8.1AI score0.00236EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2024/11/14 12:0 a.m.13 views

Fedora 37 : mingw-expat (2022-dcb1d7bcb1)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-dcb1d7bcb1 advisory. Update to 2.4.9, fixes CVE-2022-30674. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that...

8.1CVSS7.6AI score0.01659EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/11/08 12:0 a.m.6 views

PT-2024-35469 · Gnu Guix · Gnu Guix

Name of the Vulnerable Software and Affected Versions: GNU Guix versions before 5ab3c4c Description: A privilege escalation issue exists because build outputs are accessible by local users before file metadata concerns, such as for setuid and setgid programs, are properly addressed. This issue ca...

8.1CVSS7AI score0.00228EPSS
Exploits0References25
Positive Technologies
Positive Technologies
added 2024/11/06 12:0 a.m.4 views

PT-2024-7957

Name of the Vulnerable Software and Affected Versions Cisco Desk Phone 9800 Series versions prior to the fixed version Cisco IP Phone 7800 Series versions prior to the fixed version Cisco IP Phone 8800 Series versions prior to the fixed version Cisco Video Phone 8875 versions prior to 14.21SR3...

5.3CVSS6.3AI score0.0045EPSS
Exploits0References11
OSV
OSV
added 2024/10/08 5:57 p.m.5 views

CVE-2024-47780 Information Disclosure in TYPO3 Page Tree

TYPO3 is a free and open source Content Management Framework. Backend users could see items in the backend page tree without having access if the mounts pointed to pages restricted for their user/group, or if no mounts were configured but the pages allowed access to "everybody." However, affected...

3.1CVSS6.6AI score0.00294EPSS
Exploits0References4
Rows per page
Query Builder